AWS MSK

This page describes connection Lenses to a AWS MSK cluster.

Lenses will not start without a valid Kafka Connection. You can either add the connection via the bootstrap wizard or use provisioning for automated deployments.

It is recommended to install Lenses on an EC2 instance or with EKS in the same VPC as your MSK cluster. Lenses can be installed and preconfigured via the AWS Marketplace.

Open network connectivity

Edit the AWS MSK security group in the AWS Console and add the IP address of your Lenses installation.

Enable Open Monitoring

If you want to have Lenses collect JMX metrics you have to enable Open Monitoring on your MSK cluster. Follow the AWS guide here.

Select your MSK endpoint

Depending on your MSK cluster, select the endpoint and protocol you want to connect with.

It is not recommended to use Plaintext for secure environments. For these environments use TLS or IAM.

Creating a Connection

In the Lenses bootstrap UI, Select:

Security Protocol and set the protocol you want to use
SASL Mechanism and set the mechanism you want to use.

Connecting with AWS IAM

In the Lenses bootstrap UI, Select:

Security Protocol and set it to SASL_SSL
Sasl Mechanism and set it to AWS_MSK_IAM
Add software.amazon.msk.auth.iam.IAMLoginModule required; to the Sasl Jaas Config section
Optionally upload your trust store
Set sasl.client.callback.handler.class=software.amazon.msk.auth.iam.IAMClientCallbackHandler in the Advances Kafka Properties section.

PreviousApache Kafka NextAWS MSK Serverless

Last updated 13 days ago